4306 matches found
Apple Webkit Option Element ContentEditable Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apples Webkit. User interaction is required in that the user must coerced into visiting a website or opening a malicious document. The specific flaw exists within how the library removes a particul...
Apple Webkit ConditionEventListener Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple's Webkit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the applicati...
Sun Solaris嵌套目录树处理本地拒绝服务漏洞
BUGTRAQ ID: 40319 Solaris是一款由Sun开发和维护的商业UNIX操作系统。 本地用户可以通过对嵌套了深层目录树的文件系统执行rm1、find1等操作触发栈溢出,导致拒绝服务的情况。 Sun Solaris 10.0x86 Sun Solaris 10.0 厂商补丁: Sun --- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://sunsolve.sun.com/security perl -e '$a="X";for1..8000 ! -d $a and mkdir $a and chdir $a '...
Sun Solaris 10 - Nested Directory Tree Local Denial of Service
Sun Solaris 10 - Nested Directory Tree Local Denial of Service source: https://www.securityfocus.com/bid/40319/info Sun Solaris is prone to a local denial-of-service vulnerability. Exploiting this issue allows local users to cause denial-of-service conditions in certain filesystem commands. Sun...
Sun Solaris 10 - Nested Directory Tree Local Denial of Service
source: https://www.securityfocus.com/bid/40319/info Sun Solaris is prone to a local denial-of-service vulnerability. Exploiting this issue allows local users to cause denial-of-service conditions in certain filesystem commands. Sun Solaris 10 is affected, other versions may also be vulnerable...
SuSE9 Security Update : epiphany (YOU Patch Number 12616)
This update brings Mozilla SeaMonkey to 1.1.19 fixing various bugs and security issues. The following security issues are fixed : - Mozilla developers took fixes from previously fixed memory safety bugs in newer Mozilla-based products and ported them to the Mozilla 1.8.1 branch so they can be...
Joomla Percha Categories Tree 0.6 Local File Inclusion
========================================================================================================================== o Joomla Component Percha Categories Tree Local File Inclusion Vulnerability Software : comperchacategoriestree version 0.6 Vendor : http://www.percha.com/ Author :...
openSUSE Security Update : MozillaFirefox (openSUSE-SU-2010:0102-3)
This patch updates Mozilla Firefox to the 3.5.9 release. It includes the following security fixes: MFSA 2010-16: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed evidence of memory...
openSUSE Security Update : firefox35upgrade (firefox35upgrade-2262)
This patch updates Mozilla Firefox from the 3.0 stable branch to the 3.5.9 release. It includes also following security fixes: MFSA 2010-16: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes...
SuSE 10 Security Update : MozillaFirefox, MozillaFirefox-branding-upstream, MozillaFirefox-translations, mozilla-xulrunner191, mozilla-xulrunner191-devel, mozilla-xulrunner191-gnomevfs, mozilla-xulrunner191-translations, python-xpcom191 (ZYPP Patch Number 6970)
Mozilla Firefox was updated to version 3.5.9 fixing lots of bugs and security issues. The following security issues were fixed : - Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed...
openSUSE Security Update : seamonkey (openSUSE-SU-2010:0102-1)
Mozilla SeaMonkey was updated to version 2.0.4 fixing lots of bugs and security issues. Following security issues were fixed: MFSA 2010-16: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes...
Mozilla Foundation Security Advisory 2010-17
Mozilla Foundation Security Advisory 2010-17 Title: Remote code execution with use-after-free in nsTreeSelection Impact: Critical Announced: March 30, 2010 Reporter: regenrecht via TippingPoint's Zero Day Initiative Products: Firefox, Thunderbird, SeaMonkey Fixed in: Firefox 3.5.9 Firefox 3.0.19...
CVE-2010-0176
Mozilla Firefox before 3.0.19, 3.5.x before 3.5.9, and 3.6.x before 3.6.2; Thunderbird before 3.0.4; and SeaMonkey before 2.0.4 do not properly manage reference counts for option elements in a XUL tree optgroup, which might allow remote attackers to execute arbitrary code via unspecified vectors...
Design/Logic Flaw
Mozilla Firefox before 3.0.19, 3.5.x before 3.5.9, and 3.6.x before 3.6.2; Thunderbird before 3.0.4; and SeaMonkey before 2.0.4 do not properly manage reference counts for option elements in a XUL tree optgroup, which might allow remote attackers to execute arbitrary code via unspecified vectors...
Design/Logic Flaw
Use-after-free vulnerability in the nsTreeSelection implementation in Mozilla Firefox before 3.0.19 and 3.5.x before 3.5.9, Thunderbird before 3.0.4, and SeaMonkey before 2.0.4 allows remote attackers to execute arbitrary code or cause a denial of service application crash via unspecified vectors...
CVE-2010-0176
Mozilla Firefox before 3.0.19, 3.5.x before 3.5.9, and 3.6.x before 3.6.2; Thunderbird before 3.0.4; and SeaMonkey before 2.0.4 do not properly manage reference counts for option elements in a XUL tree optgroup, which might allow remote attackers to execute arbitrary code via unspecified vectors...
CVE-2010-0175
Use-after-free vulnerability in the nsTreeSelection implementation in Mozilla Firefox before 3.0.19 and 3.5.x before 3.5.9, Thunderbird before 3.0.4, and SeaMonkey before 2.0.4 allows remote attackers to execute arbitrary code or cause a denial of service application crash via unspecified vectors...
CVE-2010-0176
Mozilla Firefox before 3.0.19, 3.5.x before 3.5.9, and 3.6.x before 3.6.2; Thunderbird before 3.0.4; and SeaMonkey before 2.0.4 do not properly manage reference counts for option elements in a XUL tree optgroup, which might allow remote attackers to execute arbitrary code via unspecified vectors...
CVE-2010-0175
Use-after-free vulnerability in the nsTreeSelection implementation in Mozilla Firefox before 3.0.19 and 3.5.x before 3.5.9, Thunderbird before 3.0.4, and SeaMonkey before 2.0.4 allows remote attackers to execute arbitrary code or cause a denial of service application crash via unspecified vectors...
Mozilla Firefox < 3.0.19 Multiple Vulnerabilities
Binary data 5493.prm...